Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft
File: iDHWIdGS-S2wk9kzCSweI2tNSXs.mft (raw, json)
Hash identifier: ytYmm9ug30aQHUhHbaJMeszPxq6CBFbQbKm0SJf7eKY=
Subject key identifier: AE:52:A0:21:3F:95:DF:83:33:FB:DD:A5:55:19:C1:DA:B4:36:FE:2C
Authority key identifier: 88:31:D6:21:D1:92:F9:2D:B0:93:D9:33:09:2C:1E:23:6B:4D:49:7B
Certificate issuer: /CN=8831d621d192f92db093d933092c1e236b4d497b
Certificate serial: 0197530FE756733449B4CA51092ABFEEBE2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iDHWIdGS-S2wk9kzCSweI2tNSXs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft
Manifest number: 1582
Signing time: Mon 09 Jun 2025 05:00:40 +0000
Manifest this update: Mon 09 Jun 2025 05:00:40 +0000
Manifest next update: Tue 10 Jun 2025 05:00:40 +0000
Files and hashes: 1: 1-6XFLoPOdCVTnXJMZNU0hBiKubk.roa (hash: OxkphaRHymUnb8SN18Gdla2SO6vLVqs5y/4vbMpFmm4=)
2: iDHWIdGS-S2wk9kzCSweI2tNSXs.crl (hash: /BmC8jPjeHPn2gqxjrOlI2HB/uOlYh68WMJTvE7iIWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft
rsync://rpki.ripe.net/repository/DEFAULT/iDHWIdGS-S2wk9kzCSweI2tNSXs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 02:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:0f:e7:56:73:34:49:b4:ca:51:09:2a:bf:ee:be:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8831d621d192f92db093d933092c1e236b4d497b
Validity
Not Before: Jun 9 05:00:40 2025 GMT
Not After : Jun 10 05:00:40 2025 GMT
Subject: CN=ae52a0213f95df8333fbdda55519c1dab436fe2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:1e:e1:11:5b:67:7d:1c:27:d7:29:66:65:a4:
79:f6:a8:db:24:ee:26:f7:66:0f:4a:50:6b:a7:74:
86:8e:b1:39:a3:11:63:f5:2b:9b:6b:67:be:d9:07:
27:0d:06:4f:8e:b9:f8:31:0b:f4:86:30:90:c1:b8:
5c:ca:9b:13:e3:c4:53:e2:fe:75:d6:04:71:5a:f2:
13:64:87:96:ff:52:b5:b2:85:77:e1:9a:48:93:7b:
30:ea:86:0e:9d:fa:9b:a4:4a:24:66:05:cd:10:7a:
37:22:fc:d5:ff:05:40:f7:c0:d2:09:3d:d3:f4:53:
03:e8:65:8f:20:76:19:57:18:d9:cc:be:e0:e7:95:
18:e5:66:c5:7c:90:8d:b3:b0:8c:8b:c6:01:0d:54:
eb:81:16:98:c4:dd:9b:70:c9:2f:9f:88:68:4c:ac:
13:b0:84:74:ad:9b:5e:7b:ac:72:64:13:ad:bf:92:
f1:42:b6:ba:5b:27:3e:e7:30:14:3f:2e:21:41:b8:
9a:11:12:d4:d7:12:88:d9:73:13:2b:ef:50:ad:b1:
af:cf:e7:f2:9d:f7:f6:a9:2c:7b:b1:51:92:72:fb:
19:58:6f:40:21:f8:05:6f:a1:18:80:d1:c4:ed:57:
d6:08:1e:2a:70:03:82:73:4f:bf:62:5f:fc:40:5a:
dc:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:52:A0:21:3F:95:DF:83:33:FB:DD:A5:55:19:C1:DA:B4:36:FE:2C
X509v3 Authority Key Identifier:
keyid:88:31:D6:21:D1:92:F9:2D:B0:93:D9:33:09:2C:1E:23:6B:4D:49:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iDHWIdGS-S2wk9kzCSweI2tNSXs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/440781-f614-450d-9d9f-2b8761d8a137/1/iDHWIdGS-S2wk9kzCSweI2tNSXs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:40:0e:65:02:b5:bb:ef:0e:7f:c6:0d:58:3c:8b:ce:d2:aa:
54:5a:e9:00:b9:fe:12:66:e8:cf:f0:72:fa:f6:97:bd:3f:aa:
99:a3:fd:88:0b:1f:92:70:04:51:bf:5b:0d:e7:9d:fc:20:fe:
9d:16:f2:28:92:67:28:b7:cb:90:c4:3e:e8:5b:76:ae:78:db:
44:c9:96:b8:a9:39:b6:2b:54:36:38:15:61:a6:59:65:ea:8a:
3a:40:63:17:1b:48:94:ba:9e:bd:1a:64:0e:10:63:81:1e:b6:
29:55:d3:59:1b:2e:e4:a6:94:7b:10:c5:fb:92:d3:05:ae:4f:
f0:3c:f2:44:54:45:2f:58:48:d0:ce:57:af:80:36:b7:4f:c7:
13:98:15:06:fe:af:6e:55:5e:96:f2:98:8e:c2:e1:a7:e2:cf:
15:78:4e:18:ff:49:a2:f4:a8:62:71:44:cf:4c:ee:10:cd:72:
91:8a:8c:cd:b6:9e:37:0b:2a:ec:22:2e:10:3d:90:02:ee:5f:
a4:ef:fa:45:eb:b3:da:b2:a6:7f:b7:bd:ac:ec:f5:50:cf:87:
a0:d5:ff:01:0b:32:41:d5:04:32:30:1c:2c:c7:48:2d:12:a9:
13:46:31:c8:f0:dc:8d:0d:e6:9f:35:01:d3:17:d2:40:c7:6d:
d4:07:e2:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 09:39:30 2025 by rpki-client